Brian Anderson
Brian Anderson
I pinged fitzgen about this subject and he said that although he wrote the sancov bindings, he could not actually get them to work. He was trying to dynamically create...
@graydon _did_ successesfully interop with sancov in this project: https://github.com/graydon/photesthesis/blob/main/src/test.cpp So there's some more code to crossreference. Nick said if we get the sancov bindings to do anything useful he'd...
I have done some initial experiments toward making wasm fuzzable with `cargo-fuzz` / libfuzzer, and understand better the basic problems that need to be solved. I think it is doable,...
The fuzzer also needs to call into the sanitizer to display backtraces. I haven't looked at exactly how it does this, but it's another function we'll need to override to...
The backtrace printing looks hard indeed, but might not be necessary to implement. The main place backtraces are needed is to show where a failure occurred, and these appear to...
I'm doing prototyping of this project in https://github.com/brson/soroban-wasm-fuzz-test
Found while fixing https://github.com/stellar/rs-soroban-sdk/issues/1053
I do think arbitrary-proptests are useful enough to recommend, with the potential caveat about how arbitrary-proptest-interop chooses the input size mentioned below. At some point I took a look at...
There are additional revisions to be made to the fuzzing examples and I will get back to them soon.
Using snapshots to destroy and recreate the environment may not be a good idea at all since Env::from_snapshot doesn't do the same test setup that Env::default does.